cyber - Rankiteo Blog (Page 369)

PayPal and Apple: Watch out, hackers are abusing Apple account notifications to distribute malware, steal money and data

public – 3 min read

Scammers Exploit Apple’s Email Domain in Callback Phishing Attack Cybercriminals have weaponized Apple’s email notification system to launch…

Sep 1, 2025

Jeremy C

Flowise: Critical Flowise RCE Vulnerability Actively Exploited, Thousands of Systems at Risk

public – 2 min read

Critical Flowise RCE Vulnerability (CVE-2025-59528) Actively Exploited in the Wild A maximum-severity remote code execution (RCE) vulnerability in Flowise, tracked…

Sep 1, 2025

Jeremy C

Unnamed Victims: Yurei Ransomware Uses Common Tools, Adds Stranger Things References

public – 2 min read

New Yurei Ransomware Campaign Leverages *Stranger Things*-Themed Tools in Aggressive Extortion Attacks Researchers at Team Cymru have uncovered a…

Sep 1, 2025

Jeremy C

Moderates, Conservatives, The Copenhagen Post and Social Democrats: Pro-Russian group claims hits on Danish party websites as voters head to polls

public – 3 min read

Pro-Russian Hackers Disrupt Danish Political Websites Ahead of Local Elections Pro-Russian hackers launched distributed denial-of-service (DDoS) attacks on Monday, temporarily…

Sep 1, 2025

Jeremy C

Salesforce and ShinyHunters: ShinyHunters claims ongoing Salesforce Aura data theft attacks

public – 3 min read

Salesforce Customers Targeted in Data Theft Campaign via Misconfigured Experience Cloud Sites Salesforce has issued a warning about hackers exploiting…

Sep 1, 2025

Jeremy C

Fortune 500 companies and Government agencies: 900+ Certificates Used by Fortune 500, Governments Exposed by Key Leaks

public – 2 min read

Massive Leak of Private TLS Keys Exposes Fortune 500 and Government Websites A joint investigation by GitGuardian and Google has…

Sep 1, 2025

Jeremy C

Microsoft: PoC Released for Windows Vulnerability That Allows Attackers to Cause Unrecoverable BSOD Crashes

public – 3 min read

New Windows CLFS Driver Vulnerability Enables Low-Privilege DoS Attacks A proof-of-concept (PoC) exploit has been released for CVE-2026-2636, a newly…

Sep 1, 2025

Jeremy C

KT Corp.: SK Telecom gets over 340,000 users in Jan. amid KT fee waiver: data

public – 2 min read

SK Telecom Gains 340,000 Customers After KT’s Data Breach Fallout In January, South Korea’s largest mobile carrier,…

Sep 1, 2025

Jeremy C

OkCupid, Match, CarMax and Edmunds.com: ShinyHunters ramp up new vishing campaign with 100s in crosshairs

public – 4 min read

ShinyHunters Expands Vishing Campaign Targeting High-Value Organizations with Advanced Phishing Kits Okta researchers have uncovered a surge in voice-based social…

Sep 1, 2025

Jeremy C

npm and Microsoft: Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

public – 4 min read

Malicious VS Code Extensions Exfiltrate Developer Data to China-Based Servers Cybersecurity researchers have uncovered two malicious Visual Studio Code (VS…

Sep 1, 2025

Jeremy C

Amazon Web Services and Wiz: AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

public – 3 min read

AWS CodeBuild Misconfiguration Could Have Enabled Supply Chain Attacks In September 2025, Amazon Web Services (AWS) patched a critical misconfiguration…

Sep 1, 2025

Jeremy C